alex/nixos-configs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

tadpole: Add secrets for ssh machine (root) key

Browse Source
This commit is contained in:
Alexander Heldt
2024-07-29 10:31:48 +02:00
parent 020eb70f1f
commit 7c6f961b1f
4 changed files with 13 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
hosts/tadpole/modules/ssh/default.nix
View File

@@ -3,6 +3,7 @@ let
enabled = config.mod.ssh.enable;
authorizedKeysPath = "/home/alex/.ssh/authorized-keys";
rootSSHKeyPath = "/etc/ssh";
in
{
options = {
@@ -41,7 +42,7 @@ in
ports = [ 1122 ];
hostKeys = [{
path = "/etc/ssh/tadpole";
path = "${rootSSHKeyPath}/root.tadpole";
type = "ed25519";
}];
@@ -62,6 +63,15 @@ in
};
age.secrets = {
"root.tadpole" = {
file = ../../../../secrets/tadpole/root.tadpole.age;
path = "${rootSSHKeyPath}/root.tadpole";
};
"root.tadpole.pub" = {
file = ../../../../secrets/tadpole/root.tadpole.pub.age;
path = "${rootSSHKeyPath}/root.tadpole.pub";
};
"alex.pinwheel-tadpole.pub" = {
file = ../../../../secrets/pinwheel/alex.pinwheel-tadpole.pub.age;
path = "${authorizedKeysPath}/alex.pinwheel-tadpole.pub";